NIST 800-53 is a list of controls that support the development of secure and resilient federal information systems, that is part of the Special Publication 800-series published by the National Institute of Standards and Technology (NIST). It is continuously updated to define standards, controls, and assessments flexibly based on risk, cost-effectiveness, and capabilities. Publication 4 provides a catalog of security and privacy controls for federal information systems and organizations and a process for selecting controls to protect organizational operations (including mission, functions, image, and reputation), organizational assets, individuals, other organizations, and the Nation from a diverse set of threats including hostile cyber-attacks, natural disasters, structural failures, and human errors (both intentional and unintentional).
